CVE-2006-4802
N/A
N/A
Summary
Format string vulnerability in the Real Time Virus Scan service in Symantec AntiVirus Corporate Edition 8.1 up to 10.0, and Client Security 1.x up to 3.0, allows local users to execute arbitrary code via an unspecified vector related to alert notification messages, a different vector than CVE-2006-3454, a "second format string vulnerability" as found by the vendor.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://securitytracker.com/id?1016842
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28937
- http://www.securityfocus.com/bid/19986
- http://secunia.com/advisories/21884
- http://securityresponse.symantec.com/avcenter/security/Content/2006.09.13.html
- http://www.securityfocus.com/archive/1/446293/100/0/threaded
References
- http://securitytracker.com/id?1016842
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28937
- http://www.securityfocus.com/bid/19986
- http://secunia.com/advisories/21884
- http://securityresponse.symantec.com/avcenter/security/Content/2006.09.13.html
- http://www.securityfocus.com/archive/1/446293/100/0/threaded
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.